@Configuration(proxyBeanMethods=false)
public class WebSecurityConfiguration
extends java.lang.Object
implements org.springframework.context.annotation.ImportAware, org.springframework.beans.factory.BeanClassLoaderAware
WebSecurity
to create the FilterChainProxy
that performs the web
based security for Spring Security. It then exports the necessary beans. Customizations
can be made to WebSecurity
by extending WebSecurityConfigurerAdapter
and exposing it as a Configuration
or implementing
WebSecurityConfigurer
and exposing it as a Configuration
. This
configuration is imported when using EnableWebSecurity
.EnableWebSecurity
,
WebSecurity
Constructor and Description |
---|
WebSecurityConfiguration() |
Modifier and Type | Method and Description |
---|---|
static org.springframework.security.config.annotation.web.configuration.AutowiredWebSecurityConfigurersIgnoreParents |
autowiredWebSecurityConfigurersIgnoreParents(org.springframework.beans.factory.config.ConfigurableListableBeanFactory beanFactory) |
static org.springframework.beans.factory.config.BeanFactoryPostProcessor |
conversionServicePostProcessor() |
static DelegatingApplicationListener |
delegatingApplicationListener() |
WebInvocationPrivilegeEvaluator |
privilegeEvaluator()
Creates the
WebInvocationPrivilegeEvaluator that is necessary for the JSP
tag support. |
void |
setBeanClassLoader(java.lang.ClassLoader classLoader) |
void |
setFilterChainProxySecurityConfigurer(ObjectPostProcessor<java.lang.Object> objectPostProcessor,
java.util.List<SecurityConfigurer<javax.servlet.Filter,WebSecurity>> webSecurityConfigurers)
Sets the
<SecurityConfigurer<FilterChainProxy, WebSecurityBuilder>
instances used to create the web configuration. |
void |
setImportMetadata(org.springframework.core.type.AnnotationMetadata importMetadata) |
javax.servlet.Filter |
springSecurityFilterChain()
Creates the Spring Security Filter Chain
|
SecurityExpressionHandler<FilterInvocation> |
webSecurityExpressionHandler() |
@Bean public static DelegatingApplicationListener delegatingApplicationListener()
@Bean @DependsOn(value="springSecurityFilterChain") public SecurityExpressionHandler<FilterInvocation> webSecurityExpressionHandler()
@Bean(name="springSecurityFilterChain") public javax.servlet.Filter springSecurityFilterChain() throws java.lang.Exception
Filter
that represents the security filter chainjava.lang.Exception
@Bean @DependsOn(value="springSecurityFilterChain") public WebInvocationPrivilegeEvaluator privilegeEvaluator()
WebInvocationPrivilegeEvaluator
that is necessary for the JSP
tag support.WebInvocationPrivilegeEvaluator
@Autowired(required=false) public void setFilterChainProxySecurityConfigurer(ObjectPostProcessor<java.lang.Object> objectPostProcessor, @Value(value="#{@autowiredWebSecurityConfigurersIgnoreParents.getWebSecurityConfigurers()}") java.util.List<SecurityConfigurer<javax.servlet.Filter,WebSecurity>> webSecurityConfigurers) throws java.lang.Exception
<SecurityConfigurer<FilterChainProxy, WebSecurityBuilder>
instances used to create the web configuration.objectPostProcessor
- the ObjectPostProcessor
used to create a
WebSecurity
instancewebSecurityConfigurers
- the
<SecurityConfigurer<FilterChainProxy, WebSecurityBuilder>
instances used to
create the web configurationjava.lang.Exception
@Bean public static org.springframework.beans.factory.config.BeanFactoryPostProcessor conversionServicePostProcessor()
@Bean public static org.springframework.security.config.annotation.web.configuration.AutowiredWebSecurityConfigurersIgnoreParents autowiredWebSecurityConfigurersIgnoreParents(org.springframework.beans.factory.config.ConfigurableListableBeanFactory beanFactory)
public void setImportMetadata(org.springframework.core.type.AnnotationMetadata importMetadata)
setImportMetadata
in interface org.springframework.context.annotation.ImportAware
public void setBeanClassLoader(java.lang.ClassLoader classLoader)
setBeanClassLoader
in interface org.springframework.beans.factory.BeanClassLoaderAware